<< Back
CVE Number Vulnerability Product Severity Date
MS10-050 Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (981997) Windows Vista Critical 11-08-2010

Technical Information

Brief overview of the risk:
The vulnerability could allow remote code execution if an attacker sent a specially crafted Movie Maker project file and convinced the user to open the specially crafted file.
Detailed Information on the risk:

A remote code execution vulnerability exists in the way that Windows Movie Maker handles specially crafted project files. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Further information on this exploit is available at : MS10-050

Affected Software

Windows Vista x64 Edition Service Pack 1
Windows Vista x64 Edition Service Pack 2
Windows XP Professional x64 Edition Service Pack 2
Windows XP Service Pack 3